China's National Vulnerability Database warns that recent Claude Code models have a security backdoor

CHONGQING, CHINA - DECEMBER 29: In this photo illustration, a person holds a smartphone displaying the logo of “Claude,” an AI language model by Anthropic, with the company’s logo visible in the background, illustrating the rapid development and adoption of generative AI technologies, on December 29, 2024 in Chongqing, China. Artificial Intelligence (AI) has become a cornerstone of China’s strategic ambitions, with the government aiming to establish the country as a global leader in AI by 2030.
(Image credit: Cheng Xin via Getty Images)

A cybersecurity firm associated with the Chinese government reportedly has concerns about Anthropic's Claude AI models and has warned users against trusting it, at least before updating to the latest version.

As reported by Reuters, the Chinese National Vulnerability Database (NVDB) claims that recent Claude Code versions have a monitoring mechanism that transmits sensitive information to remote servers without consent from the user. This allegedly includes geographic location data and user-identifying information. This was all posted via the agency's official WeChat account, according to the outlet.

It reportedly affects users on version 2.1.91 and goes up to version 2.1.196. 2.1.196 was eventually replaced by 2.1.200 on July 3. The NVDB encourages users to either uninstall if they use the impacted version, or simply update.

Latest Videos From

As well as this, the NVDB has taken this opportunity to urge users to tighten controls and strengthen monitoring techniques for the data they allow Claude Code access to. I have reached out to Anthropic for comment on this story, but have not yet received a response.

This is not the first time that Anthropic's coding tool has drawn ire in China this month. Last week, Alibaba reportedly banned its employees from using Claude at work due to fears that it could identify Chinese users with information fed to it.

UKRAINE - 2024/12/29: In this photo illustration, Claude AI app by Anthropic is seen displayed on a smartphone screen. (Photo Illustration by Pavlo Gonchar/SOPA Images/LightRocket via Getty Images)

(Image credit: Getty Images)

Anthropic's story with Alibaba goes deeper than this, with the Claude creator accusing Alibaba of training its AI models on Anthropic's work. Anthropic claims that Alibaba, between the end of April and the start of June, generated over 28 million exchanges with Claude through close to 25,000 fraudulent accounts to harvest information.

Interestingly, Anthropic has been blocking access to Chinese companies for some time, and those companies have been reportedly getting around this restriction through overseas subsidiaries and even plain old VPNs. Anthropic is, according to the Financial Times, looking to crack down on these workarounds in the future.

The relationship between Anthropic and China seems pretty strained right now, and it seems likely that Chinese agencies are looking to swap to homegrown AI models sooner rather than later.

Razer Blade 16 gaming laptop
Best gaming rigs 2026

1. Best gaming laptop: Razer Blade 16

2. Best gaming PC: HP Omen 35L

3. Best handheld gaming PC: Lenovo Legion Go S SteamOS ed.

4. Best mini PC: Minisforum AtomMan G7 PT

5. Best VR headset: Meta Quest 3


👉Check out our list of guides👈

James Bentley
Hardware writer

James is a more recent PC gaming convert, often admiring graphics cards, cases, and motherboards from afar. It was not until 2019, after just finishing a degree in law and media, that they decided to throw out the last few years of education, build their PC, and start writing about gaming instead. In that time, he has covered the latest doodads, contraptions, and gismos, and loved every second of it. Hey, it’s better than writing case briefs.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.